From bdf6f4a7b0cbf472612f3e842f213e1c72241fde Mon Sep 17 00:00:00 2001
From: stellarsquall <stellarsquall@protonmail.ch>
Date: Thu, 20 Feb 2025 18:49:56 +0000
Subject: [PATCH] backport of commit 97af14a0c9577a69563a5471f677ad4d6c3c8a10

---
 .../docs/concepts/host-discovery/aws.mdx      | 28 ++++---------------
 1 file changed, 6 insertions(+), 22 deletions(-)

diff --git a/website/content/docs/concepts/host-discovery/aws.mdx b/website/content/docs/concepts/host-discovery/aws.mdx
index f475e0d81d..869ab034c0 100644
--- a/website/content/docs/concepts/host-discovery/aws.mdx
+++ b/website/content/docs/concepts/host-discovery/aws.mdx
@@ -91,29 +91,13 @@ Perform the following steps to set up a host catalog using [AssumeRole](https://
            {
                "Effect": "Allow",
                "Action": [
-                   "ec2:Describe*",
-                   "ec2:GetSecurityGroupsForVpc"
+                   "sts:AssumeRole"
                ],
-               "Resource": "*"
-           },
-           {
-               "Effect": "Allow",
-               "Action": "elasticloadbalancing:Describe*",
-               "Resource": "*"
-           },
-           {
-               "Effect": "Allow",
-               "Action": [
-                   "cloudwatch:ListMetrics",
-                   "cloudwatch:GetMetricStatistics",
-                   "cloudwatch:Describe*"
-               ],
-               "Resource": "*"
-           },
-           {
-               "Effect": "Allow",
-               "Action": "autoscaling:Describe*",
-               "Resource": "*"
+               "Principal": {
+                   "Service": [
+                       "ec2.amazonaws.com"
+                   ]
+               }
            }
        ]
    }